Sunday, September 9, 2012

creating wallet with oidpasswd in OID



Creating  Wallet with the oidpasswd  utility in OID 

           We can create a new wallet for the OID which stores the password for the superuser with the help of the oidpasswd utility
 oidpasswd utility  is used  for various Purposes like reset the super user password  to create the super user password  to create the    wallet ....
To run the oidpasswd utlity we need to set the ORACLE_INSTANCE and the ORACLE_HOME properly

ORACLE_HOME
The Oracle home is set to be /u03/app/oracle/products/fmw/idm .. idm directory under the fmw middle ware home

ORACLE_INSTANCE
The Oracle instance is set to be /u03/app/oracle/admin/oid_inst1 .. oid_inst1 directory will be under the admin directory 

If you are running with out the environmental variables then you will be prompted to set the environmental variables 

 [oracle@fahtestapp idm]$ /u03/app/oracle/product/fmw/idm/ldap/bin/oidpasswd connect=<hostname>:1521/oidm create_wallet=true
ERROR: ORACLE_INSTANCE must be set


[oracle@fahtestapp idm]$ /u03/app/oracle/product/fmw/idm/ldap/bin/oidpasswd  
Usage: oidpasswd connect=<Net8 Connect Descriptor> [change_oiddb_pwd=true | create_wallet=true | unlock_su_acct=true| reset_su_password=true | manage_su_acl=true]
 connect: Database connect string
 change_oiddb_pwd: Change OID database password (default operation)
 create_wallet: Create LDAP and Replication server wallets
 unlock_su_acct: Unlock OID super user account
 reset_su_password: Reset OID super user password
 manage_su_acl: Manage super user restriced ACL

Syntax : $ORACLE_HOME/ldap/bin/oidpasswd  connect=oiddb create_wallet=true


[oracle@fahtestapp oracle]$ /u03/app/oracle/product/fmw/idm/ldap/bin/oidpasswd connect=oiddb create_wallet=true
 password:
confirm password:
Replication password file exists
password set



If the tnsnames file is not available then you can specify the hostname portnumber and the connection descriptor
In the connect string you need to provide the contention descriptor in the above format  <hostname:portnumber/SID> then only it will accept the connection descriptor
[oracle@fahtestapp idm]$ /u03/app/oracle/product/fmw/idm/ldap/bin/oidpasswd connect=<hostname>:1521/oidm create_wallet=true
 password:
confirm password:
Replication password file exists
password set

The wallet which stores the Oid's database password will be created

TO Display the Contents inside the wallet we can use orapki command 
[oracle@fahtestapp bin]$ ./orapki  wallet display -wallet /u03/app/oracle/admin/oid_inst1/config/OPMN/opmn/wallet
Oracle PKI Tool : Version 11.1.1.6.0
Copyright (c) 2004, 2011, Oracle and/or its affiliates. All rights reserved.

Requested Certificates:
User Certificates:
Subject:        CN=\"Self-Signed Certificate for oid_inst1 \",OU=OAS,O=ORACLE,L=REDWOODSHORES,ST=CA,C=US
Trusted Certificates:
Subject:        OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US
Subject:        CN=GTE CyberTrust Global Root,OU=GTE CyberTrust Solutions\, Inc.,O=GTE Corporation,C=US
Subject:        CN=\"Self-Signed Certificate for oid_inst1 \",OU=OAS,O=ORACLE,L=REDWOODSHORES,ST=CA,C=US
Subject:        OU=Class 2 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US
Subject:        OU=Class 1 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US








Posted by at
Labels:

1 comment:

  1. Asim June 26, 2018 at 6:55 AM

    hi was just seeing if you minded a comment. i like your website and the thme you picked is super. I will be back.
    biker wallet

    ReplyDelete

Subscribe to: Post Comments (Atom)